Sccm2012 need’s some exclusions to work in the right direction and includes his own security PKI and Hashes when de deployment is running if someone like “the corporative antivirus” is scanning the inapropiate folders… it can drive to us in the common erros like 0x80004005 on task secuence or content mismatch into a normal deployment because is modifying in some way this hashes …

For the configuration manager clients the following exclusion can be added:

%windir%ccmcache

When using System Center Endpoint Protection you can use the out of the box template (SCEP12_Default_CfgMgr2012.xml) located %Program Files%\Microsoft Configuration Manager\AdminConsole\XmlStorage\EPTemplates.

In the template the following folders and filetypes are excluded:

%allusersprofile%\NTUser.pol

%systemroot%\system32\GroupPolicy\Machine\registry.pol (update 30/1/2014; in the Template \Machine\ is left out, thanks to Kim Oppalfens)

%windir%\Security\database\*.chk

%windir%\Security\database\*.edb

%windir%\Security\database\*.jrs

%windir%\Security\database\*.log

%windir%\Security\database\*.sdb

%windir%\SoftwareDistribution\Datastore\Datastore.edb

%windir%\Software\Distribution\Datastore\Logs\edb.chk

%windir%\Software\Distribution\Datastore\Logs\edb*.log

%windir%\Software\Distribution\Datastore\Logs\Edbres00001.jrs

%windir%\Software\Distribution\Datastore\Logs\Edbres00002.jrs

%windir%\Software\Distribution\Datastore\Logs\Res1.log

%windir%\Software\Distribution\Datastore\Logs\Res2.log

%windir%\Software\Distribution\Datastore\Logs\tmp.edb

for the next folders both “Program Files” and “Program Files x86″ paths are listed: